[FR]: Providing working-directory as an input param

action.yml

@@ -6,6 +6,10 @@ inputs:
     description: "The package you want to scan, by default will be ./..."
     required: false
     default: "./..."
+  working-directory:
+    description: "The working directory, from where the scan should start, by default will be github.workspace"
+    required: false
+    default: ${{ github.workspace }}
   go-version:
     description: "Can be any Tag for the golang docker image, but should ideally match your runtime go version. By default 1.21.4 is assumed"
     required: false
@@ -30,15 +34,22 @@ inputs:
 runs:
   using: "composite"
   steps:
+    - id: determine-working-directory
+      run: |
+        source ${{ github.action_path }}/determine-wd.sh ${{ github.workspace }} ${{ inputs.working-directory }}
+        echo "DOCKER_WD=${DOCKER_WD}" >> "$GITHUB_ENV"
+        echo "GITHUBH_WD=${GITHUBH_WD}" >> "$GITHUB_ENV"
+      shell: bash
     - id: config
       run: echo "GOLANG_VERSION=${{ inputs.go-version }} VULNCHECK_VERSION=${{ inputs.vulncheck-version }}"
       shell: bash
     - id: build
       run: docker build --build-arg GOLANG_VERSION="${{ inputs.go-version }}" --build-arg GH_PAT_TOKEN=$GH_PAT_TOKEN --build-arg GOPRIVATE=$GOPRIVATE --build-arg VULNCHECK_VERSION="${{ inputs.vulncheck-version }}" -q -f $GITHUB_ACTION_PATH/Dockerfile -t templum/govulncheck-action:local $GITHUB_ACTION_PATH
       shell: bash
     - id: run
-      run: docker run --rm -v $(pwd):/github/workspace --workdir /github/workspace -e GITHUB_TOKEN=${{ inputs.github-token }} -e STRICT=${{ inputs.fail-on-vuln }} -e PACKAGE=${{ inputs.package }} -e SKIP_UPLOAD=${{ inputs.skip-upload }} -e DEBUG=${DEBUG} -e GITHUB_REPOSITORY=${{ github.repository }} -e GITHUB_REF=${{ github.ref }} -e GITHUB_SHA=${{ github.sha }} templum/govulncheck-action:local
+      run: docker run --rm -v $(pwd):${{ env.DOCKER_WD }} --workdir ${{ env.DOCKER_WD }} -e GITHUB_TOKEN=${{ inputs.github-token }} -e STRICT=${{ inputs.fail-on-vuln }} -e PACKAGE=${{ inputs.package }} -e SKIP_UPLOAD=${{ inputs.skip-upload }} -e DEBUG=${DEBUG} -e GITHUB_REPOSITORY=${{ github.repository }} -e GITHUB_REF=${{ github.ref }} -e GITHUB_SHA=${{ github.sha }} templum/govulncheck-action:local
       shell: bash
+      working-directory: ${{ env.GITHUBH_WD }}
 
 branding:
   icon: "alert-octagon"

determine-wd.sh

@@ -0,0 +1,21 @@
+#!/bin/bash
+
+github_workspace=$1
+input_working_directory=$2
+
+if [ -z $github_workspace ]; then
+    echo "The first argument (github.workspace) is required.";
+    exit 1;
+elif [[ $github_workspace = $input_working_directory || -z $input_working_directory ]]; then
+    export DOCKER_WD=$github_workspace;
+    export GITHUBH_WD=$github_workspace;
+elif [[ $input_working_directory =~ ^/ ]]; then 
+    export DOCKER_WD=$input_working_directory;
+    export GITHUBH_WD=.$input_working_directory;
+else 
+    export DOCKER_WD=$(echo $input_working_directory |  sed 's/\.//');
+    export GITHUBH_WD=$input_working_directory
+fi
+
+echo "export DOCKER_WD=$DOCKER_WD"
+echo "export GITHUBH_WD=$GITHUBH_WD"